Apache < 1.3.31 / 2.0.49 Socket Connection Blocking Race Condition DoS
Medium Nessus Plugin ID 12280
SynopsisThe remote web server is affected by a denial of service vulnerability.
DescriptionThe remote web server appears to be running a version of Apache that is prior to 1.3.31 / 2.0.49. It is therefore, affected by a denial of service vulnerability. A remote attacker can block new connections to the server by connecting to a listening socket on a rarely accessed port.
Note that this issue is known to affect some versions of AIX, Solaris, and Tru64 and known to not affect FreeBSD or Linux.
SolutionUpgrade to Apache 2.0.49 or 1.3.31 or later.